CVE-2026-39276

The template upload feature in Emlog Pro v2.6.9 has a path traversal vulnerability, allowing authenticated administrators to execute arbitrary PHP code. By uploading a malicious ZIP archive containing directory traversal sequences in filenames, an attacker can overwrite default template files or...

CVE-2026-10855

An authorization flaw existed in the MISP Event Template Importer overwrite workflow. When importing an event template in overwrite mode, the application checked whether a matching template already existed but did not verify that the importing user belonged to the organization that owned the...

Apache HertzBeat 1.8.0 - Remote Code Execution

Exploit Title: Apache HertzBeat 1.8.0 - Remote Code Execution Google Dork: N/A Date: 2026-03-09 Exploit Author: Brett Gervasoni Vendor Homepage: https://hertzbeat.apache.org/ Software Link: https://github.com/apache/hertzbeat/releases Version: 1.8.0 Tested on: Linux Docker; official HertzBeat...

EUVD-2001-1101

Malware in sbrugna...

Mosets Tree 2.1.6 (Joomla) Template Overwrite CSRF

No description provided by source. ?php / Mosets Tree 2.1.6 Joomla Template Overwrite CSRF 3 October 2010 jdc How it works - admin template form has no nonce How to exploit - get a logged in admin to click the wrong link ; Patched in 2.1.7 / // change these $target = 'http://localhost/joomla';...

Mosets Tree 2.1.6 (Joomla) Template Overwrite CSRF

Exploit for php platform in category web applications ================================================== Mosets Tree 2.1.6 Joomla Template Overwrite CSRF ================================================== '; / page - any one of: pageaddCategory pageaddListing pageadvSearchRedirect...

Mosets Tree 2.1.6 Cross Site Request Forgery

'; / page - any one of: pageaddCategory pageaddListing pageadvSearchRedirect pageadvSearchResults pageadvSearch pageclaim pageconfirmDelete pagecontactOwner pageerrorListing pageerror pagegallery pageimage pageindex pagelistAlpha pagelisting pagelistListings pageownerListing pageprint pagerecomme...

Joomla! Component com_mtree 2.1.6 - Overwrite Cross-Site Request Forgery

'; / page - any one of: pageaddCategory pageaddListing pageadvSearchRedirect pageadvSearchResults pageadvSearch pageclaim pageconfirmDelete pagecontactOwner pageerrorListing pageerror pagegallery pageimage pageindex pagelistAlpha pagelisting pagelistListings pageownerListing pageprint pagerecomme...

Joomla! Component com_mtree 2.1.6 - Overwrite Cross-Site Request Forgery

Joomla! Component commtree 2.1.6 - Overwrite Cross-Site Request Forgery '; / page - any one of: pageaddCategory pageaddListing pageadvSearchRedirect pageadvSearchResults pageadvSearch pageclaim pageconfirmDelete pagecontactOwner pageerrorListing pageerror pagegallery pageimage pageindex...

CVE-2001-1427

Technical details of CVE-2001-1427 are not publicly available in the provided documents. Please monitor for updates from official advisories; current sources describe an unknown vulnerability in ColdFusion Server 2.0–4.5.1 SP2 without specifics.